General
-
Target
c7219846f76c010985de8b7d8f2209091093b3d6112b02501d468d0ac0721f88
-
Size
2.0MB
-
Sample
221127-fe17fsag39
-
MD5
e889f5b9d90b1d4549840a411de4f6fc
-
SHA1
62820074e4e253fd9488b546648b29e0138530a9
-
SHA256
c7219846f76c010985de8b7d8f2209091093b3d6112b02501d468d0ac0721f88
-
SHA512
39e1e11066c867f9521fe3451d08bd2939d5f5abd775c1a102f8c730c9da33de4e8b1cac000665efa804867eb0ebf8d3668767c1901ae62511c3d72d746e0b72
-
SSDEEP
49152:h1OsDNQToNVxbNrInKtDSwSm7CXH9e7B6cr7J30Ct40pTU:h1OANQUNVxNpSmGXMvxdt4
Malware Config
Targets
-
-
Target
c7219846f76c010985de8b7d8f2209091093b3d6112b02501d468d0ac0721f88
-
Size
2.0MB
-
MD5
e889f5b9d90b1d4549840a411de4f6fc
-
SHA1
62820074e4e253fd9488b546648b29e0138530a9
-
SHA256
c7219846f76c010985de8b7d8f2209091093b3d6112b02501d468d0ac0721f88
-
SHA512
39e1e11066c867f9521fe3451d08bd2939d5f5abd775c1a102f8c730c9da33de4e8b1cac000665efa804867eb0ebf8d3668767c1901ae62511c3d72d746e0b72
-
SSDEEP
49152:h1OsDNQToNVxbNrInKtDSwSm7CXH9e7B6cr7J30Ct40pTU:h1OANQUNVxNpSmGXMvxdt4
Score8/10-
Executes dropped EXE
-
Loads dropped DLL
-
Reads user/profile data of web browsers
Infostealers often target stored browser data, which can include saved credentials etc.
-
Checks installed software on the system
Looks up Uninstall key entries in the registry to enumerate software on the system.
-
Drops Chrome extension
-
Installs/modifies Browser Helper Object
BHOs are DLL modules which act as plugins for Internet Explorer.
-